Lucene search
HistoryDec 19, 2014 - 11:59 a.m.
CVE-2014-7267
cve-2014-7267
cross-site scripting
xss
ricksoft wbs
gantt-chart
jira
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.9%
Cross-site scripting (XSS) vulnerability in the output-page generator in the Ricksoft WBS Gantt-Chart add-on 7.8.1 and earlier for JIRA allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-7268.
Affected configurations
Node
ricksoftwbs_gantt-chartMatch7.8.1jira
| CPE | Name | Operator | Version |
|---|---|---|---|
| ricksoft:wbs_gantt-chart | ricksoft wbs gantt-chart | eq | 7.8.1 |
Related
prion
prion
Cross site scripting
2014-12-19 11:59:00
Cross site scripting
2014-12-19 11:59:00
cve
cve
CVE-2014-7268
2014-12-19 11:59:04
cvelist
cvelist
CVE-2014-7267
2014-12-19 11:00:00
CVE-2014-7268
2014-12-19 11:00:00
nvd
nvd
CVE-2014-7267
2014-12-19 11:59:03
CVE-2014-7268
2014-12-19 11:59:04
jvn
jvn
JVN#09289074: WBS Gantt-Chart for JIRA vulnerable to cross-site scripting
2014-12-18 00:00:00
JVN#76515134: WBS Gantt-Chart for JIRA vulnerable to cross-site scripting
2014-12-18 00:00:00
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.9%
Related for CVE-2014-7267